12th paragraph [ MODSECURITY2 UPLOAD SCANNING ] of maldetect README
How to Create a ModSecurity Vendor
Vendor Configuration URL: https://github.com/zhubanRuban/maldet-modsecurity-vendor/raw/master/meta_maldet.yaml
/scripts/modsec_vendor add https://github.com/zhubanRuban/maldet-modsecurity-vendor/raw/master/meta_maldet.yaml
wget -O /usr/local/maldetect/ignore_inotify https://github.com/zhubanRuban/maldet-modsecurity-vendor/raw/master/custom_ignore_inotify
service maldet restart
cPanel with MariaDB creates temp files with MAD and MAI extensions which are not covered by current rules:
^/var/tmp/#sql_.*\.MYD$
^/tmp/#sql_.*\.MYD$
so replaced with:
^/var/tmp/#sql_.*
^/tmp/#sql_.*
^/dev/shm/#sql_.*